How to scan your ruby or JS project for security improvements, for free.

This page summarizes the projects mentioned and recommended in the original post on dev.to
Appsec Compliance Devsecops devsecops-tools Security

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • bearer

    Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

    • Good news! There’s a free open-source tool that can scan your code, check for known risks, and give you a list of things that need fixing. All are sorted by how risky the code is—based on things like how sensitive the data is and how damaging a breach or leak would be. It’s called Bearer.

  • bear-publishing

    Ruby on Rails application like RailsGoat

    • It's a big ask to put something in your pipeline or test flow, but I really love just using it as a one-off scan as I'm building something new. Kind of like linting, but for security. Right now the main security scan supports ruby and JS/TS codebases. Give it a try—you can use our test repo if you like. Let us know what you think and if there's something you'd like to see added open an issue on GitHub.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Show HN: Bearer Code Security Scanner Add Support for Java, PHP, Go, and Python

    1 project | news.ycombinator.com | 26 Oct 2023

  • Detecting sensitive data shared with OpenAI

    3 projects | news.ycombinator.com | 4 May 2023

  • Open-source Static Code Analysis tool with sensitive-data prioritization

    1 project | /r/netsec | 7 Mar 2023

  • New Open Source SAST focused on sensitive data

    1 project | /r/SAST | 7 Mar 2023

  • Bearer, Open Source SAST focused on sensitive data

    1 project | /r/devsecops | 7 Mar 2023